Solved: Hi,Because you must have

S.Girutskiy1 · ‎06-12-2015

Hi everyone!

I've a problem with my tacacs server.

When I login like a domain-user, I get the following answer: % Authentication failed

Then I use our default login+password, and everything is fine. BUT, there is one super problem.

#sh privilege
Current privilege level is 15

As you can see I have the highest level, BUT when I type conf t or show run I get the following:

#sh run
Command authorization failed.

#conf t
Command authorization failed.

I don't get it. How is it possible? What is the problem? And how can I solve it?

Help me, please.

Thanks.

Kanwaljeet Singh · ‎06-16-2015

Hi,

Because you must have command authorization configured on your device which will be checked against the tacacs server and since the request is from a user it doesn't know about, it fails. You need to either authenticate successfully with tacacs server and then execute the commands, correct the command set or remove the command set configuration from your device.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

View solution in original post

Kanwaljeet Singh · ‎06-16-2015

Hi,

Because you must have command authorization configured on your device which will be checked against the tacacs server and since the request is from a user it doesn't know about, it fails. You need to either authenticate successfully with tacacs server and then execute the commands, correct the command set or remove the command set configuration from your device.

Regards,

Kanwal

Note: Please mark answers if they are helpful.

TACACS